Vulnerabilities > TP Link > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-03-06 | CVE-2023-43318 | Unspecified vulnerability in Tp-Link Tl-Sg2210P Firmware 5.0 TP-Link JetStream Smart Switch TL-SG2210P 5.0 Build 20211201 allows attackers to escalate privileges via modification of the 'tid' and 'usrlvl' values in GET requests. | 8.8 |
2024-02-06 | CVE-2023-36498 | OS Command Injection vulnerability in Tp-Link Er7206 Firmware 1.3.0 A post-authentication command injection vulnerability exists in the PPTP client functionality of Tp-Link ER7206 Omada Gigabit VPN Router 1.3.0 build 20230322 Rel.70591. | 7.2 |
2024-02-06 | CVE-2023-42664 | OS Command Injection vulnerability in Tp-Link Er7206 Firmware 1.3.0 A post authentication command injection vulnerability exists when setting up the PPTP global configuration of Tp-Link ER7206 Omada Gigabit VPN Router 1.3.0 build 20230322 Rel.70591. | 7.2 |
2024-02-06 | CVE-2023-43482 | OS Command Injection vulnerability in Tp-Link Er7206 Firmware 1.3.0 A command execution vulnerability exists in the guest resource functionality of Tp-Link ER7206 Omada Gigabit VPN Router 1.3.0 build 20230322 Rel.70591. | 7.2 |
2024-02-06 | CVE-2023-46683 | OS Command Injection vulnerability in Tp-Link Er7206 Firmware 1.3.0 A post authentication command injection vulnerability exists when configuring the wireguard VPN functionality of Tp-Link ER7206 Omada Gigabit VPN Router 1.3.0 build 20230322 Rel.70591. | 7.2 |
2024-02-06 | CVE-2023-47167 | OS Command Injection vulnerability in Tp-Link Er7206 Firmware 1.3.0 A post authentication command injection vulnerability exists in the GRE policy functionality of Tp-Link ER7206 Omada Gigabit VPN Router 1.3.0 build 20230322 Rel.70591. | 7.2 |
2024-02-06 | CVE-2023-47209 | OS Command Injection vulnerability in Tp-Link Er7206 Firmware 1.3.0 A post authentication command injection vulnerability exists in the ipsec policy functionality of Tp-Link ER7206 Omada Gigabit VPN Router 1.3.0 build 20230322 Rel.70591. | 7.2 |
2024-02-06 | CVE-2023-47617 | OS Command Injection vulnerability in Tp-Link Er7206 Firmware 1.3.0 A post authentication command injection vulnerability exists when configuring the web group member of Tp-Link ER7206 Omada Gigabit VPN Router 1.3.0 build 20230322 Rel.70591. | 7.2 |
2024-02-06 | CVE-2023-47618 | OS Command Injection vulnerability in Tp-Link Er7206 Firmware 1.3.0 A post authentication command execution vulnerability exists in the web filtering functionality of Tp-Link ER7206 Omada Gigabit VPN Router 1.3.0 build 20230322 Rel.70591. | 7.2 |
2024-01-11 | CVE-2024-21773 | OS Command Injection vulnerability in Tp-Link products Multiple TP-LINK products allow a network-adjacent unauthenticated attacker with access to the product to execute arbitrary OS commands. | 8.8 |